vulnerability

Red Hat: CVE-2021-47244: kernel: mptcp: Fix out of bounds when parsing TCP options

Name: Red Hat: CVE-2021-47244: kernel: mptcp: Fix out of bounds when parsing TCP options
Creator: Red Hat
Published: 2024-05-21T00:00:00.000Z
Keywords: CVE, Red Hat, 2021, 47244, kernel, no-fix-redhat-rpm-package, Severity 5

Try Surface Command

Back to search

Severity

CVSS

(AV:L/AC:L/Au:S/C:N/I:N/A:C)

Published

May 21, 2024

Added

Jul 9, 2025

Modified

Jul 10, 2025

Description

In the Linux kernel, the following vulnerability has been resolved:

mptcp: Fix out of bounds when parsing TCP options

The TCP option parser in mptcp (mptcp_get_options) could read one byte
out of bounds. When the length is 1, the execution flow gets into the
loop, reads one byte of the opcode, and if the opcode is neither
TCPOPT_EOL nor TCPOPT_NOP, it reads one more byte, which exceeds the
length of 1.

This fix is inspired by commit 9609dad263f8 ("ipv4: tcp_input: fix stack
out of bounds when parsing TCP options.").

Solution

no-fix-redhat-rpm-package

References

NVD-CVE-2021-47244

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report